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Listing of Claims: 

Claim I . (Original) A method of performing remote noti fication of records each having a 
respective record identifier, the method comprising: 

maintaining a record-user mapping which associates with each of a plurality of 
record identifiers a respective one or more user names; 

for each record upon which remote notification is to be performed: 

a) obtaining the record's record identifier's respective one or more user names 
from the record-user mapping; 



more 
e 



b) for each user name in the record's record identifier's respective one or 
user names obtaining from a user name-addressable entity mapping a respective addressable 
entity and sending a notification of the record to the addressable entity. 

Claim 2. (Original) A method according to claim 1 further comprising maintaining the user 
name-addressable entity mapping from each user name to the respective addressable entity. 

Claim 3. (Original) A method according to claim 2 wherein the user name-addressable entity 
mapping is a trusted mapping. 

Claim 4. (Original) A method according to claim 1 adapted to perform remote notification of 
records generated by a certificate management system, wherein obtaining from a user name- 
addressable entity mapping a respective addressable entity comprises obtaining a respective 
addressable entity from a respective certificate stored m a repository of published certificates. 
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Claim 5. (Original) A method according to claim 4 wherein the ccrti fieate management system 
comprises a PKT (Public Key In frastructure). 

Clami 6. (Original) A method according to claim 4 further comprising: 

maintaining the repository of published certificates in which is stored Tor each of a 
plurality of user names the respective certificate in which is identified the respective addressable 
entity. 

Claim 7. (Original) A method according to claim 1 wherein the addressable entity is an E-mail 
address. 

Claim 8. (Previously Amended) A method according to claim 1 wherein each user name is a 
distinguished name. 

Claim 9. (Previously Cancelled) 

Claim 10. (Original) A method according to claim 9 further comprising for each certificate 
storing the respecti ve addressable entity in a certificate extension field of the certificate. 

Claim 1 1 . (Original) A method according to claim 1 0 wherein storing the respecti ve 
addressable entity in a certificate extension field of the certificate comprises storing the 
respective addressable entity in a subject alternative name extension. 

Claim 12. (Previously Presented) A method according to claim 4 further comprising 
obtaining a new set of records for processing, and conducting steps a) and b) for each record m 
the new set of records. 

Claim 13. (Original) A method according to claim 1 1 further comprising storing record reading 
parameters which determine circumstances under which the new set of records for processing is 
to be obtained, and obtaining the new set of records for processing in accordance with the record 
reading parameters. 

Claim 1 4. (Original) A method according to claim 1 further comprising protecting each 
notification message by encryption and/or digital signature. 
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Claim 1 5, (Original) A method according to claim 4 further comprising protecting each 
notification message by encryption and/or digital signature. 

Claim 16. (Original) A method according to claim 4 further comprising verifying authenticity of 
the respective certificate before sending the notification to the addressable entity obtained from 
the respective certificate. 

Claim 1 7. (Original) A method according to claim 1 further comprising maintaining an 
identification of a language of choice for each user name, before sending a notification to an 
addressable entity obtained for a particular user name, determining the particular user name's 
language of choice and including a translation of text in the notification message into the 
language of choice. 

Claim 18. (Original) A method according to claim 1 further comprising; 

identifying at least one record identifier for which target audit record processing is 
to be performed, the target audit record processing comprising: 

for each record identifier for which target audit record processing is to be 
performed reading from the associated record a target user name, obtaining from the user name- 
addressable entity mapping a respective addressable entity for the target user name and sending a 
notification of the record to the addressable entity. 

Claim 19. (Original) A method according to claim 4 further comprising: 

identifying at least one record identifier for which target record processing is to be 
performed, the target audit record processing comprising: 

for each record identifier for which, target record processing is to be performed 
reading from the associated record a target user name, ohtaiiiing from the repository of published 
certificates a respective addressable entity for the target user name and sending a notification of 
the record to the addressable entitv. 
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Claim 20. (Original) A method of performing remote notification of records each having a 
respective record identifier, the method comprising: 

identifying at least one record identifier for which target record processing is to be 
performed, the target audit record processing comprising: 

for each, record identifier for winch target record processing is to be performed 
reading from an associated record a target user name which identifies a user name which was a 
target of an operation which resulted m the record, obtaining from a user name-addressable entity 
mapping a respective addressable entity for the target naer name and sending a notification of the 

record to the addressable entity. 

Claim 21 . (Origmal) A method according to claim 20 further comprising maintaining the user 
name-addressable entity mappmg from each user name to the respective addressable entity. 

Claim 22. (Original) A method according to claim 21 wherein the user name-addressable entity 
mapping is a trusted mapping. 

Claim 23. (Original) A method according to claim 20 adapted to perform remote notification of 
records generated by a certificate management system, wherein obtaining from a user name- 
addressable entity mapping a respective addressable entity comprises obtaining the respective 
addressable entity from a respective certificate stored m a repository of published certi ficatea. 

Claim 24. (Original) A method according to claim 21 wherein-the certificate management 
system comprises a PK1 (Public Key Infrastructure). 

Claim 25. (Original) A method according to claim 23 further comprising: 

collecting a set of records generated by the certificate management system. 
Claim 26. (Original) A method according to claim 23 further comprising. 

maintaining a repository of published certificates in which is stored Tor each of a 
plurality of user names a respective certificate in which i s identified a respective addressable 
entity. 
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Claim 27. (Original) A method according to claim 23 wherein the addressable entity is an E- 

mail address. 

Claim 28. (Previously Amended) A method according to claim 23 wherein each user name ,s 
a distinguished name. 

Claim 29. (Previously Amended) A method according to claim 23 further comprising for 
each certificate storing the respective addressable entity in a certificate extension of the 
certificate. 

Claim 30. (Original) A method according to claim 29 wherein storing the respective 
addressable entity in a certificate extension of the certificate comprises stormg the respective 
addressable entity in a subject alternative name extension. 

Claim 31 . (Previously Presented) A method according to claim 23 further comprising 
obtaining a new set of records for processing. 

Claim 32. (Onginal) A method according to claim 31 further comprising storing record reading 
parameters which determine circumstances under which the new set of records for processing is 
to be obtained, and obtaining the new set of records for processing in accordance with the record 
reading parameters. 

Claim 33. (Original) A method according to claim 20 further comprising protecting each 
notification message by encryption and/or digital signature. 

Claim 34. (Original) A method according to claim 20 further comprising protecting each 
notification message by encryption and/or digital signature. 

Claim 35. (Original) A method according to claim 23 further comprising verifying authenticity 
of the respective certificate before sending the notification to the addressable entity obtained 
from the respective certificate. 

Claim 36. (Original) A method according to claim 20 further comprising maintaining an 
identification of a language of choice for each user name, before sending a notification to an 
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addressable entity obtained for a particular user name, determining the particular user name's 
language of choice and including a translation of text in the notification message into the 
language of choice. 

Claim 37. (Original) An apparatus comprising: 

a record-user mapping memory structure which associates for each or a plurality 
of record identifiers a respective one or more user names; 

a receiving interface for receiving a set of records to be processed for remote 
notification, each record having a respective record identifier; 

a notification interface adapted to send messages to addressable entities; 

a record processing entity adapted to process the set of records by obtaining the 
record's record identifier's respective one or more user names from the record-user mapping, and 
for each user name in the record's record identifier's respective one or more user names 
obtaining from a user name-addressable entity mapping a respective addressable entity and 
sending a notification of the record to die addressable entity through the notification interface. 

Claim 38. (Original) An apparatus according to claim 37 in combination with the user name- 
addressable entity mapping from each user name to the respective addressable entity. 

Claim 39. (Original) An apparatus according to claim 37 adapted to perform remote notification 
of records generated by a certificate management system, wherein the user name-addressable 
entity mapping is part of a repository of published certificates, and wherein the record processing 
entity is adapted to obtain the respective addressable entity from a respective certificate stored in 
the repository of pub lished certificates. 

Claim 40. (Original) An apparatus according to claim 39 wherein the certificate management 
system comprises a PKT (public key infrastructure). 

Claim 41 (Original) An apparatus according to claim 39 in combination with the repository of 
published certificates. 
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Claim 42. (Original) An apparatus according to claim 39 wherein the addressable entity is an E- 
mail address, and the notification interface is an E-mail message sending component. 

Claim 43. (Previously Presented) An apparatus according to claim 39 further comprising a 
configuration file adapted to store record reading parameters, wherein the apparatus is adapted to 
collect through the record receiving interface a new set of records for processing. 

Claim 44. (Original) An apparatus according to claim 37 further comprising: 

a target record memory structure adapted to contain an identification of at least 
one record identifier for which target record processing is to be performed; 

wherein the record processing entity is further adapted to process each record 
identifier for which target record, name processing is to be performed by reading from the 
associated record a target user name, obtaining from the user name-addressable entity mapping a 
respective addressable entity for the target user name and sending a notification of the record to 
the addressable cnlity. 

Claim 45. (Original) An apparatus according to claim 39 further comprising: 

a target record memory structure adapted to contain an identification of at least 
one record identifier for which target record processing is to be performed; 

wherein the record processing entity is further adapted to process each record 
identifier for which target record processing is to be performed by reading from the associated 
record a target user name, obtaining from the repository of published certificates a respective 
addressable entity for the target user name and sending a notification of the record. to the 
addressable entity. 
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Claim 46. (Original) An apparatus comprising: 

a receiving interface for receiving a set of records to be processed for remote 
notification, each record having a respective record identi fi er; 

a notification interface adapted to send messages to addressable entities; 

a target record memory structure adapted to contain an identification of at least 
one record identifier for which target record processing is to be performed; 

a record processing entity adapted to process each, record in the set of records 
having a record identifier for which target record name processing is to be performed by reading 
from the record a target user name, obtaining from a user name-addressable entity mapping a 
respective addressable entity for the target user name and sending a notification of the record to 
the addressable entity. 

Claim 47. (Original) An apparatus according to claim 46 wherein the user-name addressable 
entity mapping comprises a repository of published certificates which contains for each user 
name a respective addressable entity. 

Claim 48. (Original) An apparatus according to claim 47 in combination with the user name- 
addressable entity mapping from each user name to the respective addressable entity. 

Claim 49, (Original) An apparatus according to claim 47 adapted to perform remote notification 
of records generated by a certificate management system. 

Claim 50. (Original) An apparatus according to claim 49 wherein the certificate management 
system comprises a PK1 {Public Key Infrastructure). 

Claim 51. (Original) An apparatus according to claim 47 wherein the addressable entity is an E- 
mail address, and the notification interface is an E-mail message sending component. 

Claim 52 (Previously Presented) An apparatus according to claim 47 further comprising a 
configuration file adapted to store record reading parameters, wherein the apparatus is adapted to 
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collect through the record receiving interface a new set of records for processing in accordance 
wilh the record reading parameters. 

Claim 53. (Cancelled) 

Claim 54. (Cancelled) 

Claim 55, (Cancelled) 
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